From b4922e6bb161271a1d840716778d2e1a9f7629cb Mon Sep 17 00:00:00 2001
From: Elar Lang <47597707+elarlang@users.noreply.github.com>
Date: Wed, 24 Jan 2024 20:18:21 +0200
Subject: [PATCH] #1274 - no sensitive data to trackers

---
 5.0/en/0x16-V8-Data-Protection.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/5.0/en/0x16-V8-Data-Protection.md b/5.0/en/0x16-V8-Data-Protection.md
index fdf40d6d0c..d5e99d1d52 100644
--- a/5.0/en/0x16-V8-Data-Protection.md
+++ b/5.0/en/0x16-V8-Data-Protection.md
@@ -23,6 +23,7 @@ Ensure that a verified application satisfies the following high level data prote
 | **8.1.5** | [DELETED, NOT IN SCOPE] | | | | |
 | **8.1.6** | [DELETED, NOT IN SCOPE] | | | | |
 | **8.1.7** | [ADDED] Verify that caching mechanisms are configured to only cache responses which have the correct content type and do not contain sensitive, dynamic content. The web server should return a 404 or 302 response when an non-existent file is accessed rather than returning a different, valid file. This should prevent Web Cache Deception attacks. | | ✓ | ✓ | 444 |
+| **8.1.8** | [ADDED] Verify that defined sensitive data is not sent to untrusted parties (e.g. user trackers) to prevent unwanted collection of data outside of the application's control. | | ✓ | ✓ | 200 |
 
 ## V8.2 Client-side Data Protection